Security Analyst
Raleigh, NC
Arch Capital Group Ltd.
With a company culture rooted in collaboration, expertise and innovation, we aim to promote progress and inspire our clients, employees, investors and communities to achieve their greatest potential. Our work is the catalyst that helps others achieve their goals. In short, We Enable Possibility℠.
Job Summary
The Security Analyst will prepare and defend our networks, data and systems (on-premise and in the cloud) from attack. They will use an understanding of tactics, techniques, and procedures used by attackers and apply that knowledge to assist in the investigation of cyber-attacks in order to ensure steps are taken to mitigate the threat and help the team to track all security incidents to closure. The Security Analyst will work on activities such as incident response, logging/monitoring support, application security, configuration reviews, and configuration and maintenance of various security controls, both on premise and on cloud infrastructure. They will assist on creating and revising information security standards and policies as well as create and produce applicable metrics.
Responsibilities
Participate in vulnerability management related activities including the identification, prioritization and directing the remediation of security related vulnerabilities.
Design, develop, implement, and maintain security documentation.
Document all tickets and alerts worked on in the required SLA.
Monitor and respond to SIEM alerts.
Participate in rotational on-call responsibilities.
Education and Experience
1-3 years of related security experience
Deep understanding of cyber incident response processes and procedures..
Understanding of Cyber Threat Intelligence and Cyber Security Awareness concepts.
In-depth understanding of Windows operating systems and general knowledge of Unix, Linux, and Mac operating systems.
Knowledgeable with various security infrastructure tools such as intrusion prevention/detection systems, anti-virus/endpoint detection and response, proxy servers, email controls, and SIEM.
Ability to work as part of a team, show initiative and take on new tasks as assigned.
Ability to perform risk analysis and communicate that risk to others.
General understanding of AWS, Azure, and/or Google Cloud.
Experience in a 24x7 global enterprise, preferably in the financial industry.
SANS GIAC (GSEC, GCIA, GCIH, GCFA, etc.), CISSP, CEH, Security+, or similar information security certifications.
Scripting experience, preferably Python and/or PowerShell.
SIEM knowledge and experience.
General system and/or network administration experience.
Cloud Security Experience (AWS and Azure).
Bachelor’s degree in related field of study, preferred.
Security+ or other technical certifications, preferred.
#LI-SW1
#LI-HYBRID
Do you like solving complex business problems, working with talented colleagues and have an innovative mindset? Arch may be a great fit for you. If this job isn’t the right fit but you’re interested in working for Arch, create a job alert! Simply create an account and opt in to receive emails when we have job openings that meet your criteria. Join our talent community to share your preferences directly with Arch’s Talent Acquisition team.
10200 Arch Capital Services LLC* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS Azure CEH CISSP Cloud EDR GCFA GCIA GCIH GCP GIAC GSEC Incident response Intrusion prevention Linux Monitoring PowerShell Python Risk analysis SANS Scripting SIEM Threat intelligence UNIX Vulnerabilities Vulnerability management Windows
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.